8 matches found
WordPress Jetpack Boost plugin < 3.4.7 - Admin+ SSRF vulnerability
Admin+ SSRF vulnerability discovered by Miguel Xavier Penha Neto in WordPress Plugin Jetpack Boost versions 3.4.7...
WordPress Jetpack plugin < 3.4.8 - Contributor+ Stored XSS vulnerability
Contributor+ Stored XSS vulnerability discovered by Marc Montpas in WordPress Plugin Jetpack Boost versions 3.4.8...
CVE-2024-6584 Jetpack Boost < 3.4.7 - Admin+ SSRF
The 'wpajaxboostproxyig' action allows administrators to make GET requests to arbitrary URLs...
CVE-2024-6584 Jetpack Boost < 3.4.7 - Admin+ SSRF
The 'wpajaxboostproxyig' action allows administrators to make GET requests to arbitrary URLs...
CVE-2024-10076 Jetpack < 13.8, Boost < 3.4.8 - Contributor+ Stored XSS
The Jetpack WordPress plugin before 13.8, Jetpack Boost WordPress plugin before 3.4.8 use regexes in the Site Accelerator features when switching image URLs to their CDN counterpart. Unfortunately, some of them may match patterns it shouldn’t, ultimately making it possible for contributor and abo...
WordPress plugin Jetpack Boost 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
MAL-2025-1136 Malicious code in jetpack-boost (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ad5f27610bc7b64b84881ad2ba89f0c7dbe4a43f19215848e62d70dc54616fd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in jetpack-boost (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ad5f27610bc7b64b84881ad2ba89f0c7dbe4a43f19215848e62d70dc54616fd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...